jamesgolick / always_verify_ssl_certificates

Ruby's net/http is setup to never verify SSL certificates by default. Most ruby libraries do the same. That means that you're not verifying the identity of the server you're communicating with and are therefore exposed to man in the middle attacks. This gem monkey-patches net/http to force certificate verification and make turning it off impossible.
MIT License
97 stars 16 forks source link

NameError: uninitialized constant AlwaysVerifySSLCertificates #9

Open fahim-patel opened 10 years ago

rreusser commented 9 years ago

Yeah, appears broken and orphaned. :frowning:

rreusser commented 9 years ago

Sorry, or the instructions here just aren't valid.